Many enterprises have chosen to deploy and use Active Directory Federation Services (AD FS) to provide users with single sign-on (SSO) access and federation to a variety of Software as a Service (SaaS) applications.

Working with AD FS in an environment where SaaS application use is growing dramatically presents a strong set of challenges for enterprises. Scaling AD FS to provide SSO to hundreds or thousands of SaaS applications in a timely manner is simply beyond the capabilities of many already-overburdened IT departments. This is a major reason why Identity as a Service (IDaaS) solutions have arisen.

The good news is that organizations that have deployed AD FS do not have to start over. Enterprises can continue to use their existing AD FS solution as an identity bridge to SSO/federation IDaaS solutions.

This white paper will review AD FS’s history and capabilities, review gaps in the products feature set, and outline specific solutions and where they fit into an enterprise identity architecture.